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REMARKS 

I'his Supplemer.tal Amendment is being filed to replace the September 7, 2004 
Amendment that the Examiner indicated will not be entered because it included incorrect claim 
sets. Claims 1-36, all tlie claims pending in the application, stand rejected on prior art grounds. 
Applicants respeciftilly traverse these objections/rejections based on the following discussion. 

1, The Prior Art Rejections 

Claims 1,4-9, 19, and 22-27 stand rejected under 35 U.S.C. §1 02(b) as being anticipated 
by Meyers et al., hereirafter "Meyers" (U.S. Patent No. 5,937,159). Claims 2 and 20 stand 
rejected under 35 U.S.C. §1 03(a) as being unpatentable over Meyers in view of Sebcs ct al., 
hereinafter **Sebes" (SIGMA: Security for Distribute Object Interoperability Between Trusted 
and Untrusted Systems). Claims 3 and 21 stand rejected under 35 U,S.C. §1 03(a) as being 
unpatentable over Meyers. Claims 10, 12-18, 28, and 30-36 stand rejected under 35 U.S.C. 
§1 03(a) as being unpatentable over Meyers in view of Al-Ghosein et al., hereinafter "Al- 
Ghosein" (U.S. Patent NO. 5,937,159). Claims 1 1 and 29 stand rejected under 35 U.S.C. 
§1 03(a) as being unpatentable over Meyers in view of Al-Ghoscin in lurther view of Sebes. 
Applicants rcsfTCctfully traverse these rejections based on the following discussion. 

A. The i02(b) Rejection Based on Meyers 

Applicants respectfully submit thai Meyers does not teach or suggest positioning "an 
untrusted computer between said private computer system and an external computer such that 
said external computer is prevented from communicating directly with said private computer 
system . . .wherein only said untrusted application execution contexts of said applications on said 
untrusted system can communicate directly with said external computer system" as defined by 
independent claims 1 , 9, 17, and 25. To the contrary, as shown in Figure 3 of Myers, the prior art 
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of record only discloses a system and methodology for deterrninLng whether users can directly 
access a computer system and docs not disclose the invenUvc methodology and system that 
positions untrusled computer between a private computer system and an external computer. 
Therefore, once an external computer system has passed the various security procedures 
described in Meyers, the external computer system is allowed to directly access the trusted or 
private computer system. To the contrary, in the claimed invention the external computer is 
prevented from commuuicating directly with the private computer system. 

One major concern is that the external system 1 2 may try to reach the trusted system 1 0 to 
misappropriate data or destroy the trusted system 10. To prevent this, the invention positions an 
unlrusted system 1 1 between the trusted system 1 0 and the external system 12. The untrusted 
system 1 1 includes an operating system 14 which controls many devices such a storage device 15 
(e.g., one or more direct access storage devices DASD). The untrusted system existe to host data 
or run applications which must be made available to the external network. With the claimed 
invention the untrusted system includes applications that have trusted application execution 
contexts 13 and untrusted application execution contexts 1 6. With the invention, the untrusled 
application execution contexts 16 cannot initiate communications with the trusted system 16. 
However, trusted application execution contexts 13 can initiate cotmections with the trusted 
system 10. Programs rjnning on trusted system 10 can initiate connections to any context on 
untrusted system 11. 

Thus, if a user on the trusted system 10 attempts to connect to the untrusted system 1 1 to 
access some data, the user would be communicating with a trusted application execution context 
1 3 and the connection would be allowed (and data would flow over the cotmection). However, 
if an external user 12 (accessing untrusted system 1 1 via an untrusted application execution 
context 1 6) tries to initiate a connection with the trusted system 10, the connection is rejected by 
the operating system 14. Therefore, the invention allows connections between the trusted system 
10 and the untrusted system 1 1 to be initiated only from the trusted system 10, or firom an 
application running in a trusted execution context 13. 
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For example, the invention would be very useful where a business has an Iniemet web 
page (which wouJd reside on the untrusted system 1 1 ) yet still wants to have the Internet web 
data (in addition to all of its internal business data) accessible by employees who are on the 
trusted system 1 0, In the foregoing situation, the business with the trusted system 1 0 would need 
full control over access to the trusted system 10, through conventional security measures (e.g., 
passwords^ physical isolation, etc.). 

To the contrary, Figure 3 of Meyers, shows an operating system 304 functionally 
connected to a plurality of user mode processes through their respective secure boundaries. The 
ftp SI 301. the login SI 302, the credentials daemon 305 and the A&A Daemon 306 arc shown 
communicating with operating system 304 which Isolates each user mode process from all other 
user mode processes. The A&A is unique because it is also connected the A&A database 
hardware 307, which hnplies that all access to the physical storage that holds the A&A data must 
be made by the A&A Daemon 306 and all other processes are prevented from accessing that 
storage. Therefore, a user properly clears the secure boundary, is provided direct access to the 
private computer system. This is directly contrary to the claimed invention that places em 
untrusted computer bei.wecn the external computer and the private computer system and prevents 
the external computer firom communicating directly with the private computer system. 

In view the foregoing. Applicants respectfully submit that Meyers docs not teach or 
suggest positioning '*aii untrusted computer between said private computer system and an 
external computer sucli that said external computer is prevented from communicating directly 
with said private computer system . . .wherein only said untrusted application execution contexts 
of said applications on said untrusted system can communicate directly with said external 
computer system" as defined by independent claims 1, 9, and 17 and similarly defined by 
Independent claim 25. Therefore, it is Applicants position that independent claims 1, 9, and 25 
are patentable over Myers. Further, dependent claims 4-8, 19, 22-24, 26, and 27 arc similarly 
patentable over Myers not only because they depend from a patentable independent claim, but 
also because of the additional features the dependent claims define. Thus» the Examiner is 
respectfully requested to reconsider and withdraw this rejection. 
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B. The 103(a) Rejection Based on Meyers in view of Sebes 

As shown abovo, it is Applicants position that Meyers does not teach or suggest 
positioning "an untrustcd computer between said private computer system and an external 
computer such that said external computer is prevented from communicatmg directly with said 
private computer system . . .wlwrehi only said untrusted application execution contexts of said 
applications on said untrusted system can communicate directly with said external computer 
system" as defined by independent claims 1, 9, and 17 and similarly defined by independent 
claim 25. Sebes also docs not teach or suggest these features, but instead Sebes similarly allows 
the external computer *lirect access to the trusted or private computer ones the external computer 
has passed the authentication process. For example, in section 3.2 and 3.3, Sebes describes that 
once an external reque:it has been validated, the gateway allows the external computer direct 
access to the private or a trusted computer. 

Therefore, it is Applicant's position that Sebes similarly does not teach or suggest 
positioning "an untrusted computer between said private computer system and an external 
computer such that sai<l external computer is prevented from communicating directly witli said 
private computer system . . .wherein only said untrusted application execution contexts of said 
applications on said untrusted system can conununicate directly with said external computer 
system." Therefore, no combination of Meyers and Sebes would teach or suggest the invention 
as defined by independent claims 1» 9, 1 7, and 25 and it is Applicants position that these 
independent claims arc patentable over any such combination. Further, dependent claims 2 and 
20 are similarly patenUible, not wily by virtue of their dependency from a patentable independent 
claim, but also by virtue of the additional features of the Invention they defme. In view the 
forgoing, tlic Examiner is respectfully requested to reconsider and withdraw tliis rejection. 
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C. The 10:i(a) Rejection Based on Meyers 

As shown abov<i, it is Applicants position that Meyers does not teach or suggest 
positioning "an uniruatcd computer between said private computer system and an external 
computer such that saic external computer is prevented from communicating directly with said 
private computer system . . .wherein only said untnisted application execution contexts of said 
applications on s^d un trusted system can communicate directly with said external computer 
system" as defined by independent claims 1, 9, and 17 and similarly defined by independent 
claim 25. Thus, Applicants submit that independent claims 1, 9, 1 7, and 25 are patentable over 
the prior art of record. Further, dependent claims 3 and 21 are similarly patentable, not only by 
virtue of their dependexicy from a patentable independent claim, bat also by virtue of the 
additiojial features of the invention they define. In view the forgoing, the Examiner is 
respectfully requested to reconsider and withdraw this rejection. 

D. The 1 03(a) Rejection Based on Meyers in view of Al-Ghosein 

As shown above, it is Applicants position that Meyers docs nbt teach or suggest 
positioning "an untnisted computer between said private computer system and an external 
computer such that said external computer is prevented from communicating directly with said 
private computer system . . .wherein only said untnisted application execution contexts of said 
applications on said untnisted system can communicate directly with said external computer 
system" as defined by independent claims 1, 9, and 17 and similarly defined by independent 
claim 25. Al-Ghosein also does not teach or suggest these features, but instead Al-Chosein 
similarly allows the external computer direct access to the triisted or private computer once the 
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external computer has passed the authentication process. 

For example, Al-Ghosein describes a centralized security facility that gives system 
components a flexible raechanisra for implementing security policies. System components such 
as applications create a request describing an action that needs to be checked against an 
appropriate security policy. The request is given to a trust system that determines which policy 
object applies to the retiuest, and may pass request arguments to the poUcy, The policy objects 
include executable code that uses any arguments along with dynamically obtained variable 
information to make a decision. The decision is letumed to the system component, which then 
operates accordingly. Thus. Ai-Ghosein allows the external computer direct access to the trusted 
or private computer system. 

Therefore, it is Applicant's position that Al-Ghosein similarly does not teach or suggest 
positioning "an untrusted computer between said private computer sysStem and an external 
computer such that said external computer is prevented from communicating directly with said 
private computer system . . .wherein only said untrustcd application execution contexts of said 
applications on said untrusted system can communicate directly with said external computer 
system." Therefore, no combination of Meyers and Sebes would teach or suggest die invention 
as defined by indepencent claims 1 , 9, 1 7, and 25 and it is Applicants position that these 
independent claims arc: patentable over any such combination. Furtlier, dependent claims 10, 12- 
16, 1 8, 28, and 30-36 mc similariy patentable, and not only by virtue of their dependency from a 
patentable independent claim, but also by virtue of the additional features of the invention they 
define. In view the forgoing, the Examiner is respectfully requested to reconsider and withdraw 
this rejection. 
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E, The 103(a) Rejection Based on Meyer$ in view of AI-Ghosela and Sebes 

As shown above, it is Applicants position that neither Meyers, Sebes, nor Al-Ghosein 
teach or suggest positioning "an untrusted computer between said private computer system and 
an external computer siich that said external computer is prevented from communicating directly 
with said private computer system . . .wherein only said untrusted application execution contexts 
oi'said applications on said untrusted system can communicate directly with said external 
computer system" as defined by independent claims 1 , 9, and 1 7 and similarly defined by 
independent claim 25. Thus, Applicants submit that independent claims 1, 9, 17, and 25 are 
patentable over the prior art of record. Further, dependent claims 1 1 and 19 are similarly 
patentable, not only by virtue of their dcpotdency from a patentable independent claim, but also 
by virtue of the additional features of the invention they define. In view the forgoing, the 
Exammer is respectfully requested to reconsider and widKiraw this rejection. 

11. Formal Matters and CoDClusion 

In view of the ioregoing. Applicants submit that claims I -36, all the claims presently 
pending in the application, are palentably distinct from the prior art of record and are in condition 
for allowance. The Examiner is respectfiilly requested to pass the above application to issue at 
the earliest possible time. 

Should the Examiner find the application to be other than in condition for allowance, the 
Examiner is requested to contact the undersigned at the local telephone number listed below to 
discuss any other changes deemed necessaiy. 
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Please charge aiiy deficiencies and credit any overpayments to Attorney's Deposit 
Account Number 09-0457. 



McGinn & Oibb, PLLC: 
2568-A Riva Road 
Suite 304 

Annapolis. MD 21401 
Customer Number 29 1 54 



Respectfully submitted, 



Dated: 





Frederick W. Gibb, UI 
Reg. No. 37,629 
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